Vulnerabilities > CVE-2006-5782 - Unspecified vulnerability in HP Openview Client Configuraton Manager
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
radexecd.exe in HP OpenView Client Configuraton Manager (CCM) does not require authentication before executing commands in the installation directory, which allows remote attackers to cause a denial of service (reboot) by calling radbootw.exe or create arbitrary files by calling radcrecv.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00795552
- http://secunia.com/advisories/22780
- http://securityreason.com/securityalert/1842
- http://securitytracker.com/id?1017197
- http://www.securityfocus.com/archive/1/450942/100/0/threaded
- http://www.vupen.com/english/advisories/2006/4410
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30138